PT-2021-18133 · Hewlett Packard · Hpe Storeserv Management Console

Published

2021-12-10

Updated

2022-07-12

CVE-2021-29214

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: HPE StoreServ Management Console (SSMC) versions 3.4 GA through 3.8.1

Description: A security issue has been identified in HPE StoreServ Management Console (SSMC), where an authenticated SSMC administrator could exploit it to inject code and elevate their privilege in SSMC. The scope of this issue is limited to SSMC, and the arrays being managed are not impacted.

Recommendations: For HPE StoreServ Management Console (SSMC) versions 3.4 GA through 3.8.1, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-29214

Affected Products

Hpe Storeserv Management Console

PT-2021-18133 · Hewlett Packard · Hpe Storeserv Management Console

CVE-2021-29214

Related Identifiers

Affected Products

References · 4